Cybercriminals are using Pope Francis’ death to launch malware and phishing campaigns. This fits a pattern called “cyber threat opportunism,” where hackers exploit an event of global interest to exploit confusion and chaos.
These scams usually start off as social media posts using AI-generated images to spread disinformation or disbelief. For example, fake news posts were spotted on Facebook using an AI-generated image of Pope Francis claiming he’s still alive or sensationalising the circumstances of his death. Politico also reported seeing a TikTok post claiming the Pope’s death is a hoax.
The posts are designed to go viral and draw clicks, often including links promising to tell users more. Researchers at CheckPoint Security report a fake news link redirecting to a fake Google gift card page that tricked users into sharing sensitive information, such as payment data.
SEO poisoning is another trick that comes in handy here. When combined with the growth of a particular search term during a short period around such events, cybercriminals use the technique to boost malicious websites that rank for trending terms.
Some of these malicious websites go a step further and run scripts to harvest even more data, including device names, operating systems, location, and more. This data is then sold off on dark web forums. Additionally, the sites may also deliver malware, which can steal login credentials, payment information, browser cookies, and more from an unsuspecting victim.
Similar events have also been exploited in the past. Google reported over 18 million malware and phishing emails sent to Gmail users per day during the COVID-19 pandemic. Queen Elizabeth II’s death was exploited for similar schemes.
Protection against such attacks is a mere matter of common sense. Avoid clicking on suspicious or sensationalised links, keep your browser and operating system updated, and only engage with trusted tools online.
In the News: North Korean IT workers are using deepfakes to get jobs
